$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc9f0e1-f459-488b-91a4-d783253227a4.roa File: 7dc9f0e1-f459-488b-91a4-d783253227a4.roa (raw, json) Hash identifier: dBwvzzbbeq467Tevx31JSr4BlmoIWKoYgK5X0Nwtk9I= Subject key identifier: 66:DF:FD:B6:B8:C8:A9:20:04:32:AC:12:5D:9E:97:82:82:2E:66:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C7ABEC4FCC8148D1F609CFD06ED34A319D3BA5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc9f0e1-f459-488b-91a4-d783253227a4.roa Signing time: Tue 27 May 2025 00:01:09 +0000 ROA not before: Tue 27 May 2025 00:01:09 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.122.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7a:be:c4:fc:c8:14:8d:1f:60:9c:fd:06:ed:34:a3:19:d3:ba:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:01:09 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=2d1f4deb1e6632cb8bd891cd876489fdfda7181ccaa0f8ba9d31c51764669586, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:13:8d:1b:f7:da:d9:0f:9b:ee:6a:91:86: 98:42:cb:d8:7b:77:79:15:13:fb:95:82:ae:a8:b6: 80:5d:b7:15:5f:00:f5:fd:40:83:55:b9:48:30:b9: 4c:2e:aa:84:1b:95:7c:7d:28:4a:90:d7:c3:65:87: 70:09:2a:14:32:9a:77:4c:f1:e2:3a:41:75:9d:ff: 8c:0b:33:57:12:f7:3f:1f:b3:16:6d:32:c1:37:12: 59:42:d6:0c:c8:f6:57:0e:05:41:41:34:e4:b2:d9: fb:d6:3e:fc:e9:c4:54:4e:41:03:e1:44:42:bf:61: fc:c1:df:4a:6a:43:94:bd:47:bb:5d:7e:e8:f5:f7: 0d:71:8f:af:d1:39:48:6a:22:8f:30:e9:14:b0:c3: 8a:69:27:97:46:bc:14:04:5e:b4:d3:42:69:6f:86: 84:b9:a7:a2:2a:ee:ff:15:3d:e9:f4:4f:28:68:32: ef:fb:8f:5e:55:fe:61:45:ed:7e:cf:b6:cb:d9:71: dc:ca:c6:c9:ce:bc:3a:eb:41:7b:33:db:ff:5e:8d: b2:f8:4a:71:b9:c8:1e:d0:2a:5f:41:10:1e:96:63: a5:46:1c:28:72:8b:b7:8f:98:85:df:75:f4:71:29: 54:36:9d:bd:15:cb:e2:2e:a2:18:a0:88:df:10:fd: f5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DF:FD:B6:B8:C8:A9:20:04:32:AC:12:5D:9E:97:82:82:2E:66:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc9f0e1-f459-488b-91a4-d783253227a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:25:79:29:eb:bc:c2:1f:bc:3a:dd:d2:f9:c6:a2:6a:95:9b: 29:41:5b:10:84:87:e9:11:6f:e5:77:b6:aa:61:07:26:e7:9b: 3e:3a:ce:4f:82:a0:c6:3a:c9:92:2d:31:6d:20:e3:8e:f1:97: d5:87:88:a7:14:88:72:a5:68:99:f3:c1:5b:e0:4b:ca:33:a4: 3f:f5:d5:4d:65:73:93:6e:b4:ed:bd:c1:68:57:be:f9:e4:bc: cb:49:9e:95:87:5e:cc:f9:9b:d4:f0:c7:3d:25:07:8f:4f:29: ca:b7:45:5c:2d:c6:6f:59:07:58:b5:d6:1f:17:5c:d1:e0:ec: 36:6f:cd:58:c4:67:a8:ed:71:8c:ed:97:8b:c4:da:30:cf:57: 83:4d:19:72:3a:ee:33:9e:74:98:e6:39:00:00:be:02:54:a3: cd:ed:63:4c:f4:c2:c8:7f:05:48:3d:b2:16:cd:aa:1d:a4:16: 78:37:d7:04:f6:32:56:2f:40:60:38:f3:3a:42:3c:6c:27:21: 93:47:84:ff:12:26:08:6b:e0:bd:80:ab:17:8c:68:96:50:97: 7e:6f:71:d7:63:8c:a6:a1:44:22:65:55:10:f6:1d:da:94:8a: bb:bc:38:dc:24:f9:35:bd:b2:4c:d7:c6:12:c4:99:bd:c8:27: 94:c3:8a:1c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfHq+xPzIFI0fYJz9Bu00oxnTulswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMTA5WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDFmNGRlYjFlNjYzMmNiOGJkODkxY2Q4NzY0ODlmZGZk YTcxODFjY2FhMGY4YmE5ZDMxYzUxNzY0NjY5NTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDkhONG/fa2Q+b7mqRhphCy9h7d3kVE/uVgq6otoBdtxVf APX9QINVuUgwuUwuqoQblXx9KEqQ18Nlh3AJKhQymndM8eI6QXWd/4wLM1cS9z8f sxZtMsE3EllC1gzI9lcOBUFBNOSy2fvWPvzpxFROQQPhREK/YfzB30pqQ5S9R7td fuj19w1xj6/ROUhqIo8w6RSww4ppJ5dGvBQEXrTTQmlvhoS5p6Iq7v8VPen0Tyho Mu/7j15V/mFF7X7PtsvZcdzKxsnOvDrrQXsz2/9ejbL4SnG5yB7QKl9BEB6WY6VG HChyi7ePmIXfdfRxKVQ2nb0Vy+IuohigiN8Q/fXbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZt/9trjIqSAEMqwSXZ6XgoIuZk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkYzlmMGUxLWY0NTktNDg4Yi05MWE0LWQ3ODMyNTMyMjdhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQejANBgkqhkiG9w0BAQsFAAOCAQEAPiV5Keu8wh+8Ot3S+caiapWbKUFb EISH6RFv5Xe2qmEHJuebPjrOT4KgxjrJki0xbSDjjvGX1YeIpxSIcqVomfPBW+BL yjOkP/XVTWVzk2607b3BaFe++eS8y0melYdezPmb1PDHPSUHj08pyrdFXC3Gb1kH WLXWHxdc0eDsNm/NWMRnqO1xjO2Xi8TaMM9Xg00ZcjruM550mOY5AAC+AlSjze1j TPTCyH8FSD2yFs2qHaQWeDfXBPYyVi9AYDjzOkI8bCchk0eE/xImCGvgvYCrF4xo llCXfm9x12OMpqFEImVVEPYd2pSKu7w43CT5Nb2yTNfGEsSZvcgnlMOKHA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:13:11 2025 by rpki-client